HIGHCVE-2026-43030Published Modified CNA Linux
CVE-2026-43030: bpf: Fix regsafe() for pointers to packet
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix regsafe() for pointers to packet In case rold->reg->range == BEYOND_PKT_END && rcur->reg->range == N regsafe() may return true which may lead to current state with valid packet range not being explored. Fix the bug.
Metrics
- CVSS v3.1
- 7.8
- Severity
- HIGH
- Fixed in
- 0
- Affected Products
- 2
Fix available
0015a74476dc1ab6923d89f1ee009aaf43faa718537db6b9726d0bcf91cbdf9d63b558c50da49f9685.10.2535.15.2036.1.1686.6.1346.12.816.18.226.19.127.07241da033fdc507b920e092dab1f97b945cb03708aebe18069394f4a79d2d82080a0f806da449996a8502a79e832b861e99218cbd2d8f4312d62e225b52f6d0ef7b308f9d05bbddb78749852f28e8e40b99d82706bd1511bb875e3de7154698fd9215c99ca995b1462ec6db1e869100ba1fb7356bd3f22f0
Affected packages
- Linux / Linux< b52f6d0ef7b308f9d05bbddb78749852f28e8e40 (from 95b6ec733752b31bfd166c4609d2c1b5cdde9b47) · < 37db6b9726d0bcf91cbdf9d63b558c50da49f968 (from 6d94e741a8ff818e5518da8257f5ca0aaed1f269) · < 015a74476dc1ab6923d89f1ee009aaf43faa7185 (from 6d94e741a8ff818e5518da8257f5ca0aaed1f269) · < b99d82706bd1511bb875e3de7154698fd9215c99 (from 6d94e741a8ff818e5518da8257f5ca0aaed1f269) · < 7241da033fdc507b920e092dab1f97b945cb0370 (from 6d94e741a8ff818e5518da8257f5ca0aaed1f269) · < 8aebe18069394f4a79d2d82080a0f806da449996 (from 6d94e741a8ff818e5518da8257f5ca0aaed1f269)
- Linux / Linux5.11Fixed in 0, 5.10.253, 5.15.203, 6.1.168, 6.6.134, 6.12.81, 6.18.22, 6.19.12, 7.0
CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H